CVE-2025-66723 | THREATINT

Description

inMusic Brands Engine DJ before 4.3.4 suffers from Insecure Permissions due to exposed HTTP service in the Remote Library, which allows attackers to access all files and network paths.

PUBLISHED Reserved 2025-12-08 | Published 2025-12-30 | Updated 2026-01-05 | Assigner mitre

References

github.com/audiopump/cve-2025-66723

www.inmusicbrands.com/

cve.org (CVE-2025-66723)

nvd.nist.gov (CVE-2025-66723)

Download JSON